Summary
The host is installed with Adobe Acrobat
and is prone to unspecified Out-of-bounds error vulnerability.
Impact
Successful exploitation will allow
context-dependent attacker to cause a crash or potentially disclose memory contents.
Impact Level: Application
Solution
No solution or patch is available as of
3rd February, 2015. Information regarding this issue will updated once the solution details are available. For updates refer, http://www.adobe.com/in/products/acrobat.html
Insight
The error exists due to an out-of-bounds
read flaw in CoolType.dll
Affected
Adobe Acrobat 10.x through 10.1.13 and
Adobe Acrobat 11.x through 11.0.10 on on Mac OS X.
Detection
Get the installed version with the help
of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-9161 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat and Reader 'printSeps()' Function Heap Corruption Vulnerability
- Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
- Adobe Flash Player 9.0.115.0 and earlier vulnerability (Lin)
- Adobe AIR Multiple Vulnerabilities -02 April 13 (Mac OS X)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)